CompTIA CompTIA Mobility+ N10-005 Questions & Answers

• Question 131:

  Which of the following wireless security measures, although widely implemented, does not provide strong security?

  A. IPSec

  B. WPA2

  C. MAC address filtering

  D. 802.1x

  Correct Answer: C

  By MAC address filtering you can only filter layer 2 traffic but in security system layer 4 and layer 4 security is also essential.

• Question 132:

  Which of the following is a specialized piece of hardware designed to encrypt and decrypt user traffic?

  A. Proxy server

  B. TDR

  C. Smart jack

  D. VPN concentrator

  Correct Answer: D

  The VPN Concentrator is used for Remote Access VPN's. In typical use, a Remote Access VPN allows users to use an encrypted tunnel to securely access a corporate or other network via the Internet.

• Question 133:

  Which of the following would be the BEST solution for an IDS to monitor known attacks?

  A. Host-based

  B. Signature-based

  C. Network-based

  D. Behavior-based

  Correct Answer: B

  Signature detection involves searching network traffic for a series of bytes or packet sequences known to be malicious. A key advantage of this detection method is that signatures are easy to develop and understand if you know what network behavior you're trying to identify.

• Question 134:

  Users are reporting that external web pages load slowly. The network administrator determines that the Internet connection is saturated. Which of the following is BEST used to decrease the impact of web surfing?

  A. Caching

  B. Load balancing

  C. Port filtering

  D. Traffic analyzer

  Correct Answer: A

  In computer science, a cache is a component that transparently stores data so that future requests for that data can be served faster. The data that is stored within a cache might be values that have been computed earlier or duplicates of original values that are stored elsewhere. If requested data is contained in the cache (cache hit), this request can be served by simply reading the cache, which is comparatively faster.

• Question 135:

  Joe, a technician, suspects a virus has infected the network and is using up bandwidth. He needs to quickly determine which workstation is infected with the virus. Which of the following would BEST help Joe?

  A. Web server

  B. Syslog

  C. Network sniffer

  D. SNMP

  Correct Answer: C

  Network sniffer is a tool to analyze packets that are being exchanged between the hosts and using this Joe can understand whether there was traffic encountered to server or not which was infected.

• Question 136:

  A network administrator is implementing a wireless honeypot to detect wireless breach attempts. The honeypot must implement weak encryption to lure malicious users into easily breaking into the network. Which of the following should the network administrator implement on the WAP?

  A. WPA

  B. WPA2

  C. WEP

  D. VPN

  Correct Answer: C

  Wired Equivalent Privacy (WEP) is a security algorithm for IEEE 802.11 wireless networks. Introduced as part of the original 802.11 standard ratified in September 1999, its intention was to provide data confidentiality comparable to that of a traditional wired network.WEP, recognizable by the key of 10 or 26 hexadecimal digits, is widely in use and is often the first security choice presented to users by router configuration tools

• Question 137:

  Which of the following network appliances will only detect and not prevent malicious network activity?

  A. IDS

  B. Network sniffer

  C. IPS

  D. Firewall

  Correct Answer: A

  An intrusion detection system (IDS) is a device or software application that monitors network or system activities for malicious activities or policy violations and produces reports to a management station. Some systems may attempt to stop an intrusion attempt but this is neither required nor expected of a monitoring system.

• Question 138:

  Which of the following describes a single computer that is setup specifically to lure hackers into revealing their methods, and preventing real attacks on the production network?

  A. Evil twin

  B. Honeypot

  C. DMZ

  D. Honeynet

  Correct Answer: B

  In computer terminology, a honeypot is a trap set to detect, deflect, or in some manner counteract attempts at unauthorized use of information systems.

• Question 139:

  A network technician has configured a new firewall with a rule to deny UDP traffic. Users have reported that they are unable to access Internet websites. The technician verifies this using the IP address of a popular website. Which of the following is the MOST likely cause of the error?

  A. Implicit deny

  B. HTTP transports over UDP

  C. Website is down

  D. DNS server failure

  Correct Answer: A

  In a network firewall ruleset if a certain type of traffic isn't identified it will be denied or stopped by Implicit Deny.

• Question 140:

  Users at a remote site are unable to establish a VPN to the main office. At which of the following layers of the OSI model does the problem MOST likely reside?

  A. Presentation

  B. Application

  C. Physical

  D. Session

  Correct Answer: D